

Jan-29-04 



05:03p(n 



Frofn- 



T-313 P. 007/012 F-060 



Appl. No.: 09/458,602 
Filed: 12/08/99 
Page 5 



REMARKS/ARGUMENTS 



Applicant would like to thank the Examiner for the thorough review of the present 
application. Based upon the araendments and the following remarks, Applicants respectfully 
request reconsideration of the present application and allowance of the pending claims. 

The Present Invention 

The present invention comprises a method and system for selectively implementing and 
enforcing Authentication, Authorization and Accounting (AAA)* The authentication capability 
can be based upon multiple methods. First, AAA can be done based upon where the traffic is 
originating, such as a location, computer, circuit, or user. Secondly^ the authentication and 
authorization capability can be based upon the type of services tlie Li5er is attempting to access, 
such as a destination address. This can be a destination port or Internet address, a TCP port, a 
network. Third, AAA can be based upon the content type or protocol being transmitted. For 
example, each packet can be filtered through the selective AAA process, so that a user can be 
audiorized access to a particular location. Each time the user attempts to access a different 
location, the user is subject to the AAA, so the user may be prevented access firom a particular 
site the AAA method deems inaccessible to the user based upon the user*s authorization. 
Alternatively, the AAA method according to the present invention allows users to connect 
directly to a specific site, such as credit card or billing servers wliich collect billing information, 
which can indicate that the user has paid, so that the user is thereafter authoriiied access to 
networks. Additionally, a user's authorization can depend upon a specific time, so that the user 
can be kicked off a network at a specific time, after a specific time has elapsed, or according to 
otlier dynamic information detennined by tlie network provider. 
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35 U.S,C. g 102 (&) Rejections 

Claims 1-15 stand rejected under 35 U.S.C. 102 (e) as being anticipated by United States 
Patent No. 6,434,619 issued to Lim et al. (the '619 Lim patent). 

AccordiUfi to the Office Action, the '619 Lim patent teaches all of elements of Claim 1. 
Specifically, according to the Office Action, the "619 Lim patent teaches a metliod for 
authorizing, authenticating and accounting users having transparent access to a destination 
network, wherein the users otherwise have access to a home network through home network 
settings resident on the user's computers, and wherein the users can access the destination 
network without altering the home network settings, comprising: 

receiving at a gateway device a request firom a user for access to the destination 
network; (Column 4, lines 19-24) 

identifying an attribute associated with the user based upon a packet received by 
the gateway device, wherein die packet is transmitted from the user's computer, wherein the 
user's computer remains configured for accessing tlie home networlc, and wherein no additional 
configuration software need be installed on the user's computer to access the destination 
network; (Column 9, lines 10-15 and Column 5, lines 7-24) 

accessing a user profile corresponding to the user and stored in a user profile 
database, where the user profile is accessed based upon the attribute associated with the user; 
(Column 4, lines 36-38) and 

detennining if tlie user is entitled to access the destination network based upon the 
user profile. (Column 5, lines 16-24). 
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The Office Action fturther states that the service provider servers (Figure 2 of the '619 
Lime patent) provide the functionality of accounting, authorization and authentication. 

Tlie *61 9 Lim Patent Does Not Teach how to Perform AAA Access Control froni 
Gateway Device that is Located Within the Access Network (i.e.. Prior to the Intemet/WWW) 

The teachings of the '619 Lim patent are distinguishable from the claimed invention in 
that the Lim patent does not teach a gateway device thai provides AAA access control- By 
definition, a gateway device will be physically located within the access network (i.e., between 
the user and the Internet/WWW). 

The '619 Lim patent teaches AAA access control being performed at a Customer Service 
Management (CSM) server that is physically located downstream, beyond the access network 
(i.e*, between tlie Intemet/WWW and tlie desired destination network, i.e., the network manager 
system). (See Figure 2 of the '619 Lim patent and the discussion beginning at Column 3, line 9) 

Independent Claims 1 and 9 of the present invention, specifically require that the AAA 
access control occur from the gateway device. As such the present invention, as opposed to the 
teachings of the '619 Lim patent, is able to provide AAA access control before tlie user is 
granted access to the Intemet/WWW. 

This is key to the inventive concepts of the present invention because by providing for 
AAA access control local to where Hie user is located, i.e„ at the gateway device, the user is able 
to remain configured for a home network even though they are accessing a destination network. 
This limitation is positively stated in the preamble for the independent method claim. Claim 1 
and the preamble for the system claim, Claim 9. The '619 Lim patent does not provide for this 
concept because tlie AAA access control is perfonned, downsnream, remote from the access 
point. 
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Thus for the reasons stated above, independent claiins 1 and 9, ajid the dependent claims 
that add further limitations, are distingiiisliable from the teachings of the '619 Lim patent and, 
thus ai'e patentable. 

The Lim ^619 Patent Does Kot Teach AAA Access Control Ab sent Reconfiguration, Alteration 
of tli&Home Network Settings And/Or Executing Additional Cnnfi juration Software at the 
User's Computer 

The teachings of the '619 Lim patent are distinguishable, in tliat, they do not teach AAA 
access control being performed absent reconfiguration, alteration of the home network settings, 
and/or executing additional configuration software at the user's computer. 

The '619 Lim patent teaches AAA access control occurring downstream at the CSM 
server. Thus, the '619 Lim patent would require reconfiguration of die user's computer to gain 
access to the destination network. Moreover, the '619 Lim patent would require reconfiguration 
of the user's computer to even be able to reach the CSM server across the Intemet. 

In the present invention, by providing for AAA access control at the gateway device the 
present invention is able to provide transparent access regardless of configuration, i,e., no 
additional configuration software needs be installed on the user's computer to access the 
destination network, no alteration of the home network settings is required and no additional 
configuration software or agents Jire required at the user's computer. These limitations are 
specifically stated in the independent method claim, Claim 1, and the independent system claim, 



Thus for the reasons stated above, independent claims 1 and 9, and the dependent claims 
that add further limitations, are distinguishable from the teachings of the '619 Lim patent and, 
thus ore patentable. 



Claim 9. 
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Tlie Lim '619 Patent Does Not Teach AAA A ccess Control Absent the Use of Virtual Private 
Networks 

The teachings of the Lim '619 patent are distinguisliable, in that, the Lim patent requires 
the creation of Virtual Private Networks (VPNs) to perform AAA and grant selective access. 
The VPNs are required in the Lim '619 patent because the AAA access control is being 
perfonned downstream at the CSM server. 

In the present invention, the need for VPNs is obviated by the fact that AAA access 
control is being performed from the gateway device. As such, in the present invention, AAA and 
die granting of selective access is accomplished witliin the user's destination network. 

As such, applicant respectfully submits that all of the independent claims, which have 
been rejected vmder 35 U.S.C. § 102 (e), as well as the dependent claims that depend there from, 
are not anticipated by legal standards and, are thus, patentable. 
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Conclusion 

In view of the proposed amended claims and the remarks submitted above, it is 
respectfully submitted that the present claims are in condition for immediate allowance. It is 
therefore respectfully requested diat a Notice of Allowance be issued. The Examiner is 
encouraged to contact Applicant's undersigned attorney to resolve any remaining issues in order 
to expedite examination of the present invention. 

It is not believed that extensions of time or fees for net addition of claims are required, 
beyond tliose that may otherwise be provided for in documents accompanying this paper. 
However, in the event that additional extensions of time are necessary to allow consideration of 
this paper, such extensions are hereby petitioned under 37 CFR § L136(a), and any fee required 
therefore (including fees for net addition of claims) is hereby authorized to be charged to Deposit 
Account No. 16-0605. 
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Respectfully submitted. 
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1 hereby certify that this paper is being facsunile tnmamitred to the US Patent and Trademark Office 
at Fm: No. (703) 872-9306 ftn the date shown below. 
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